$ rpki-client -vvf rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft File: JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft (raw, json) Hash identifier: dU9gsOz24MrRP3YkDlfo3C992GaddZzrYrpz9KkxBxc= Subject key identifier: 33:97:51:81:5A:31:AE:ED:FA:2D:BB:37:30:AF:4C:4E:C7:DB:37:EE Authority key identifier: 24:44:3A:E8:3E:DF:96:AF:19:42:DB:FF:0E:D4:F8:C1:7D:D6:79:6F Certificate issuer: /CN=A91B58FF/serialNumber=24443AE83EDF96AF1942DBFF0ED4F8C17DD6796F Certificate serial: 0752 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JEQ66D7flq8ZQtv_DtT4wX3WeW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft Manifest number: 0738 Signing time: Fri 18 Jul 2025 22:04:15 +0000 Manifest this update: Fri 18 Jul 2025 22:04:14 +0000 Manifest next update: Fri 25 Jul 2025 22:04:14 +0000 Files and hashes: 1: JEQ66D7flq8ZQtv_DtT4wX3WeW8.crl (hash: YwegqjThWqeUpg5lVvcpheQHnecBFX57dcMAQQsJnjU=) 2: A46317803F5211EBB1B1701FC4F9AE02.roa (hash: FMNZ9SsPDMaBsxCn7D6dqqqWjFTqP/F+Fz8blXpHCbk=) 3: C74B01CA3C3E11EBA08CAC72C4F9AE02.roa (hash: IWEwNMzAHK/ef+4K/t2BfxtQJgKm9A+qNvlUUfJjqyg=) 4: A50523F43F5211EBB1B1701FC4F9AE02.roa (hash: MXwTZ0HTMZgGNdBLgLlhrgI3zl9svxesevJasfZECFs=) 5: 65DA620C798111EBBD22251CC4F9AE02.roa (hash: /RISfiBtXbfKLP2ghs+Yyw4wfbS03k7nxtHus8aqX1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.crl rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JEQ66D7flq8ZQtv_DtT4wX3WeW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1874 (0x752) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B58FF, serialNumber=24443AE83EDF96AF1942DBFF0ED4F8C17DD6796F Validity Not Before: Jul 18 22:04:14 2025 GMT Not After : Jul 25 22:04:14 2025 GMT Subject: CN=687ac4df-5c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:5c:11:38:30:90:a5:79:24:f5:4b:ee:ef:a7: 5a:c8:01:d0:00:47:f8:85:30:68:c2:53:c8:2b:cf: 36:a8:57:9f:e4:e4:53:6f:69:21:f9:9d:51:53:bb: 86:51:e8:3f:27:a5:84:3f:f6:b8:80:0f:8d:ca:9c: 9a:9b:4e:f6:25:e2:6a:31:e2:92:45:f9:f4:a6:a6: 7d:f4:a8:2e:47:cd:05:a2:a7:42:8d:84:42:63:fd: 19:f3:42:be:13:f6:ca:5f:06:b3:c6:5b:27:59:41: 89:07:85:a4:96:3f:9a:6b:17:9f:f3:b4:84:9d:85: 50:8f:ce:67:bc:ce:0c:e4:14:20:30:51:c9:05:5d: 28:64:e8:51:a1:90:c5:c7:76:2d:17:01:66:50:f2: 02:74:26:b1:2f:c8:ab:48:38:47:8a:62:c7:61:1b: 37:54:28:65:24:7e:58:af:5e:b6:2b:28:bc:8b:9e: be:c1:71:32:ec:34:65:6d:a4:24:05:de:ae:42:a7: fe:5e:5c:c3:cc:09:2e:c9:51:c5:60:d8:8c:c2:8b: f6:82:a3:e5:04:32:49:d2:61:bb:8c:80:de:cf:90: 8a:21:b4:6a:c1:bc:d7:85:de:b2:5b:e9:7f:cf:45: 7f:59:6d:27:52:8b:9e:ec:19:f1:a7:7f:9a:73:c3: 8f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:97:51:81:5A:31:AE:ED:FA:2D:BB:37:30:AF:4C:4E:C7:DB:37:EE X509v3 Authority Key Identifier: keyid:24:44:3A:E8:3E:DF:96:AF:19:42:DB:FF:0E:D4:F8:C1:7D:D6:79:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JEQ66D7flq8ZQtv_DtT4wX3WeW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:b2:51:ec:a1:89:74:70:5c:a8:99:76:b7:20:db:9e:5c:e7: 27:f7:9f:1b:ff:56:7d:9f:20:17:f9:30:c1:ce:c2:2d:87:6f: 4e:30:bf:6e:6f:4e:e0:22:14:58:09:5d:78:f8:84:54:62:cf: bd:92:c0:7a:5b:d7:ce:60:f8:9d:d3:08:01:d4:00:06:4a:f1: e6:42:63:32:dc:96:0b:ab:1d:f5:94:0b:55:70:31:57:55:41: 30:b6:25:0f:a6:d1:28:60:d8:b5:b5:fd:24:f3:73:f1:ab:36: b0:b1:f1:c4:de:ee:19:5f:94:58:39:a1:42:1b:a7:7b:3a:8f: b6:2e:49:79:a0:81:b4:13:87:55:1c:6e:0d:43:08:bd:1a:c1: 64:1e:05:dd:4a:15:56:98:68:61:a0:dc:7a:63:67:e6:48:a2: 40:a6:ed:e9:54:6b:75:b9:0b:20:d6:73:a8:f8:8b:cf:80:cf: 91:ef:29:3f:4d:10:3c:24:dc:0c:3b:ee:a8:be:4c:14:87:b3: b5:23:72:40:7e:9b:f0:e8:7d:ee:1a:1a:b9:df:8f:13:b2:1f: 8b:d1:2e:22:d9:26:9f:f9:71:63:b0:92:f1:72:20:31:24:60: 87:64:84:f7:a1:bb:60:6c:d1:57:f2:6d:d2:67:81:4e:83:de: 8c:c2:3e:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4RkYxMTAvBgNVBAUTKDI0NDQzQUU4M0VERjk2QUYxOTQyREJGRjBFRDRGOEMx N0RENjc5NkYwHhcNMjUwNzE4MjIwNDE0WhcNMjUwNzI1MjIwNDE0WjAYMRYwFAYD VQQDEw02ODdhYzRkZi01YzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8VwRODCQpXkk9Uvu76dayAHQAEf4hTBowlPIK882qFef5ORTb2kh+Z1RU7uG Ueg/J6WEP/a4gA+Nypyam072JeJqMeKSRfn0pqZ99KguR80FoqdCjYRCY/0Z80K+ E/bKXwazxlsnWUGJB4Wklj+aaxef87SEnYVQj85nvM4M5BQgMFHJBV0oZOhRoZDF x3YtFwFmUPICdCaxL8irSDhHimLHYRs3VChlJH5Yr162Kyi8i56+wXEy7DRlbaQk Bd6uQqf+XlzDzAkuyVHFYNiMwov2gqPlBDJJ0mG7jIDez5CKIbRqwbzXhd6yW+l/ z0V/WW0nUoue7Bnxp3+ac8OPmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOXUYFa Ma7t+i27NzCvTE7H2zfuMB8GA1UdIwQYMBaAFCREOug+35avGULb/w7U+MF91nlv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNThGRi8xMjA0QUIzQzND M0QxMUVCQjkzODFGNzFDNEY5QUUwMi9KRVE2NkQ3ZmxxOFpRdHZfRHRUNHdYM1dl VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pFUTY2RDdmbHE4WlF0dl9EdFQ0d1gzV2VXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NThGRi8xMjA0QUIzQzNDM0QxMUVCQjkzODFGNzFDNEY5QUUwMi9KRVE2NkQ3Zmxx OFpRdHZfRHRUNHdYM1dlVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTslHsoYl0cFyomXa3INueXOcn958b/1Z9nyAX+TDBzsIth29OML9u b07gIhRYCV14+IRUYs+9ksB6W9fOYPid0wgB1AAGSvHmQmMy3JYLqx31lAtVcDFX VUEwtiUPptEoYNi1tf0k83PxqzawsfHE3u4ZX5RYOaFCG6d7Oo+2Lkl5oIG0E4dV HG4NQwi9GsFkHgXdShVWmGhhoNx6Y2fmSKJApu3pVGt1uQsg1nOo+IvPgM+R7yk/ TRA8JNwMO+6ovkwUh7O1I3JAfpvw6H3uGhq5348Tsh+L0S4i2Saf+XFjsJLxciAx JGCHZIT3obtgbNFX8m3SZ4FOg96Mwj5p -----END CERTIFICATE-----Generated at Sun Jul 20 06:42:10 2025 by rpki-client